An OSSA has been issued for this:
https://lists.launchpad.net/openstack/msg17034.html
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to keystone in Ubuntu.
https://bugs.launchpad.net/bugs/1006822
Title:
** This bug has been flagged as a security vulnerability
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to keystone in Ubuntu.
https://bugs.launchpad.net/bugs/1006822
Title:
** Changed in: keystone
Milestone: folsom-2 = 2012.2
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to keystone in Ubuntu.
https://bugs.launchpad.net/bugs/1006822
Title:
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2012-4456
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to keystone in Ubuntu.
https://bugs.launchpad.net/bugs/1006822
Title:
This bug was fixed in the package keystone -
2012.1+stable~20120824-a16a0ab9-0ubuntu2
---
keystone (2012.1+stable~20120824-a16a0ab9-0ubuntu2) precise-proposed;
urgency=low
* New upstream release (LP: #1041120):
-
Test coverage log.
** Attachment added: 2012.1+stable~20120824-a16a0ab9-0ubuntu2.log
https://bugs.launchpad.net/bugs/1006822/+attachment/3283184/+files/2012.1%2Bstable%7E20120824-a16a0ab9-0ubuntu2.log
** Tags added: verification-done
--
You received this bug notification because you are a
** Changed in: keystone (Ubuntu)
Status: New = Fix Released
** Also affects: keystone (Ubuntu Precise)
Importance: Undecided
Status: New
** Changed in: keystone (Ubuntu Precise)
Status: New = Confirmed
--
You received this bug notification because you are a member of
** Branch linked: lp:ubuntu/precise-proposed/keystone
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to keystone in Ubuntu.
https://bugs.launchpad.net/bugs/1006822
Title: